Compliance Job
The Compliance Job allows administrators to identify potential risks such as rooting/jailbreaking, SIM card alterations, and non-compliant passwords on devices. When these threats are detected, the job can take proactive steps, such as adding devices to a blocklist or erasing data. Additionally, administrators have the capability to configure alerts and notifications for the discovery of these vulnerabilities. This job enhances security measures by helping to prevent and manage potential breaches and unauthorized activities on enrolled devices.
Follow the below steps to create a Compliance Job:
On the SureMDM Web Console, navigate to Jobs > New Job > iOS/iPadOS > Compliance Jobs.
In the Compliance Job prompt, enter a Job Name and select Enable Compliance Job.
Select an option from the below to configure compliance rules and click Configure.
| Option | Description |
|---|---|
| OS Version | Define compliance rules based on the device's operating system version. |
| Jailbroken/Rooted | Detect and flag devices that are jailbroken (iOS/iPadOS) or rooted (Android). |
| Online Device Connectivity | Create compliance conditions based on whether the device is connected to the SureMDM server. |
| SIM Change | Detect SIM card changes on the device to enforce security or policy compliance. |
| Password Policy | Ensure devices adhere to the defined password complexity and security policies. |
| MTD | Create rules based on Mobile Threat Defense (MTD) policy. Supported from SureMDM Agent version 4.67 and above. |
- Configure the Compliance Rules and under Out of Compliance Actions, select the appropriate action from the following when the compliance rules are violated:
| Option Name | Description |
|---|---|
| Send Message | Send a custom message to the SureMDM Console. |
| Move to Blocklist | Move the device to the blocklist to restrict its access. |
| Wipe the Device | Remotely wipe all data from the device. |
| Lock Device | Remotely lock the device to prevent unauthorized usage. |
| E-mail Notification | Send an email alert to the configured recipient(s). |
| Apply Job | Apply a predefined job to the device for remediation. |
| Send SMS | Send an SMS to the device’s registered number. |
The Out of Compliance Actions can be delayed by setting the Delay time.
Click Add Action to add additional Out of Compliance Actions.
Click Save.
The newly created job will be listed in the Jobs List section.
Go back to the Home tab and select the iOS/iPadOS device(s) or group(s).
Click Apply to launch the Apply Job/Profile To Device prompt.
Select the job under All Jobs/Profiles.
Click Apply in the Apply/Profile To Device prompt.